./Ultimate.py --spec ../../sv-benchmarks/c/properties/unreach-call.prp --file ../../sv-benchmarks/c/product-lines/minepump_spec5_product36.cil.c --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for ERROR reachability Using default analysis Version 30e01a73 Calling Ultimate with: /usr/lib/jvm/java-11-openjdk-amd64/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/plugins/org.eclipse.equinox.launcher_1.5.800.v20200727-1323.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/config/TaipanReach.xml -i ../../sv-benchmarks/c/product-lines/minepump_spec5_product36.cil.c -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/config/svcomp-Reach-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G ! call(reach_error())) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 06101f936f6436bac89af152aefce31c84cfc20ba80a5adfcf1af02faa2d4f3b --- Real Ultimate output --- This is Ultimate 0.2.3-dev-30e01a7 [2023-11-23 21:21:56,070 INFO L188 SettingsManager]: Resetting all preferences to default values... [2023-11-23 21:21:56,145 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/config/svcomp-Reach-32bit-Taipan_Default.epf [2023-11-23 21:21:56,150 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2023-11-23 21:21:56,150 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2023-11-23 21:21:56,188 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2023-11-23 21:21:56,189 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2023-11-23 21:21:56,190 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2023-11-23 21:21:56,190 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2023-11-23 21:21:56,191 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2023-11-23 21:21:56,192 INFO L153 SettingsManager]: * User list type=DISABLED [2023-11-23 21:21:56,192 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2023-11-23 21:21:56,193 INFO L153 SettingsManager]: * Explicit value domain=true [2023-11-23 21:21:56,193 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2023-11-23 21:21:56,194 INFO L153 SettingsManager]: * Octagon Domain=false [2023-11-23 21:21:56,195 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2023-11-23 21:21:56,195 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2023-11-23 21:21:56,196 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2023-11-23 21:21:56,196 INFO L153 SettingsManager]: * Interval Domain=false [2023-11-23 21:21:56,197 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2023-11-23 21:21:56,198 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2023-11-23 21:21:56,198 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2023-11-23 21:21:56,221 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2023-11-23 21:21:56,222 INFO L153 SettingsManager]: * Pointer base address is valid at dereference=IGNORE [2023-11-23 21:21:56,223 INFO L153 SettingsManager]: * sizeof long=4 [2023-11-23 21:21:56,223 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2023-11-23 21:21:56,224 INFO L153 SettingsManager]: * sizeof POINTER=4 [2023-11-23 21:21:56,224 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2023-11-23 21:21:56,225 INFO L153 SettingsManager]: * Pointer to allocated memory at dereference=IGNORE [2023-11-23 21:21:56,225 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2023-11-23 21:21:56,226 INFO L153 SettingsManager]: * Check array bounds for arrays that are off heap=IGNORE [2023-11-23 21:21:56,226 INFO L153 SettingsManager]: * sizeof long double=12 [2023-11-23 21:21:56,227 INFO L153 SettingsManager]: * Check if freed pointer was valid=false [2023-11-23 21:21:56,227 INFO L153 SettingsManager]: * Use constant arrays=true [2023-11-23 21:21:56,228 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2023-11-23 21:21:56,228 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2023-11-23 21:21:56,229 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2023-11-23 21:21:56,229 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-11-23 21:21:56,230 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2023-11-23 21:21:56,230 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2023-11-23 21:21:56,230 INFO L153 SettingsManager]: * Positions where we compute the Hoare Annotation=LoopHeads [2023-11-23 21:21:56,231 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2023-11-23 21:21:56,231 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2023-11-23 21:21:56,232 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2023-11-23 21:21:56,232 INFO L153 SettingsManager]: * Compute Hoare Annotation of negated interpolant automaton, abstraction and CFG=true [2023-11-23 21:21:56,232 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2023-11-23 21:21:56,232 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2023-11-23 21:21:56,233 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES WARNING: An illegal reflective access operation has occurred WARNING: Illegal reflective access by com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 (file:/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/plugins/com.sun.xml.bind_2.2.0.v201505121915.jar) to method java.lang.ClassLoader.defineClass(java.lang.String,byte[],int,int) WARNING: Please consider reporting this to the maintainers of com.sun.xml.bind.v2.runtime.reflect.opt.Injector$1 WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G ! call(reach_error())) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 06101f936f6436bac89af152aefce31c84cfc20ba80a5adfcf1af02faa2d4f3b [2023-11-23 21:21:56,495 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2023-11-23 21:21:56,541 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2023-11-23 21:21:56,543 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2023-11-23 21:21:56,546 INFO L270 PluginConnector]: Initializing CDTParser... [2023-11-23 21:21:56,546 INFO L274 PluginConnector]: CDTParser initialized [2023-11-23 21:21:56,548 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/../../sv-benchmarks/c/product-lines/minepump_spec5_product36.cil.c [2023-11-23 21:21:59,723 INFO L533 CDTParser]: Created temporary CDT project at NULL [2023-11-23 21:22:00,049 INFO L384 CDTParser]: Found 1 translation units. [2023-11-23 21:22:00,049 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/sv-benchmarks/c/product-lines/minepump_spec5_product36.cil.c [2023-11-23 21:22:00,087 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/data/3d5fd50ce/90191fe9234146a885fc1cbb8f91bed8/FLAG39c20b8f1 [2023-11-23 21:22:00,110 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/data/3d5fd50ce/90191fe9234146a885fc1cbb8f91bed8 [2023-11-23 21:22:00,116 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2023-11-23 21:22:00,120 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2023-11-23 21:22:00,124 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2023-11-23 21:22:00,124 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2023-11-23 21:22:00,130 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2023-11-23 21:22:00,133 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,135 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@762ba06a and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00, skipping insertion in model container [2023-11-23 21:22:00,135 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,214 INFO L177 MainTranslator]: Built tables and reachable declarations [2023-11-23 21:22:00,392 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/sv-benchmarks/c/product-lines/minepump_spec5_product36.cil.c[2141,2154] [2023-11-23 21:22:00,524 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-23 21:22:00,542 INFO L202 MainTranslator]: Completed pre-run [2023-11-23 21:22:00,554 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [49] [2023-11-23 21:22:00,556 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [87] [2023-11-23 21:22:00,557 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [96] [2023-11-23 21:22:00,557 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [287] [2023-11-23 21:22:00,557 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [653] [2023-11-23 21:22:00,558 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [725] [2023-11-23 21:22:00,558 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [823] [2023-11-23 21:22:00,558 WARN L75 lationResultReporter]: Unsoundness Warning: Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [873] [2023-11-23 21:22:00,578 WARN L240 ndardFunctionHandler]: Function reach_error is already implemented but we override the implementation for the call at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/sv-benchmarks/c/product-lines/minepump_spec5_product36.cil.c[2141,2154] [2023-11-23 21:22:00,660 INFO L209 PostProcessor]: Analyzing one entry point: main [2023-11-23 21:22:00,695 INFO L206 MainTranslator]: Completed translation [2023-11-23 21:22:00,695 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00 WrapperNode [2023-11-23 21:22:00,695 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2023-11-23 21:22:00,697 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2023-11-23 21:22:00,697 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2023-11-23 21:22:00,697 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2023-11-23 21:22:00,705 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,720 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,762 INFO L138 Inliner]: procedures = 56, calls = 99, calls flagged for inlining = 25, calls inlined = 21, statements flattened = 185 [2023-11-23 21:22:00,763 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2023-11-23 21:22:00,764 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2023-11-23 21:22:00,764 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2023-11-23 21:22:00,764 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2023-11-23 21:22:00,775 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,775 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,778 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,778 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,783 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,788 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,804 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,805 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,808 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2023-11-23 21:22:00,809 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2023-11-23 21:22:00,809 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2023-11-23 21:22:00,810 INFO L274 PluginConnector]: RCFGBuilder initialized [2023-11-23 21:22:00,810 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (1/1) ... [2023-11-23 21:22:00,834 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2023-11-23 21:22:00,851 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 [2023-11-23 21:22:00,865 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2023-11-23 21:22:00,881 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2023-11-23 21:22:00,914 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2023-11-23 21:22:00,914 INFO L130 BoogieDeclarations]: Found specification of procedure processEnvironment__wrappee__base [2023-11-23 21:22:00,914 INFO L138 BoogieDeclarations]: Found implementation of procedure processEnvironment__wrappee__base [2023-11-23 21:22:00,914 INFO L130 BoogieDeclarations]: Found specification of procedure cleanup [2023-11-23 21:22:00,915 INFO L138 BoogieDeclarations]: Found implementation of procedure cleanup [2023-11-23 21:22:00,915 INFO L130 BoogieDeclarations]: Found specification of procedure timeShift [2023-11-23 21:22:00,916 INFO L138 BoogieDeclarations]: Found implementation of procedure timeShift [2023-11-23 21:22:00,917 INFO L130 BoogieDeclarations]: Found specification of procedure waterRise [2023-11-23 21:22:00,917 INFO L138 BoogieDeclarations]: Found implementation of procedure waterRise [2023-11-23 21:22:00,917 INFO L130 BoogieDeclarations]: Found specification of procedure isPumpRunning [2023-11-23 21:22:00,917 INFO L138 BoogieDeclarations]: Found implementation of procedure isPumpRunning [2023-11-23 21:22:00,918 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2023-11-23 21:22:00,918 INFO L130 BoogieDeclarations]: Found specification of procedure changeMethaneLevel [2023-11-23 21:22:00,919 INFO L138 BoogieDeclarations]: Found implementation of procedure changeMethaneLevel [2023-11-23 21:22:00,921 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2023-11-23 21:22:00,921 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2023-11-23 21:22:01,047 INFO L241 CfgBuilder]: Building ICFG [2023-11-23 21:22:01,050 INFO L267 CfgBuilder]: Building CFG for each procedure with an implementation [2023-11-23 21:22:01,425 INFO L282 CfgBuilder]: Performing block encoding [2023-11-23 21:22:01,568 INFO L304 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2023-11-23 21:22:01,568 INFO L309 CfgBuilder]: Removed 2 assume(true) statements. [2023-11-23 21:22:01,570 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 09:22:01 BoogieIcfgContainer [2023-11-23 21:22:01,570 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2023-11-23 21:22:01,573 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2023-11-23 21:22:01,573 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2023-11-23 21:22:01,576 INFO L274 PluginConnector]: TraceAbstraction initialized [2023-11-23 21:22:01,577 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 23.11 09:22:00" (1/3) ... [2023-11-23 21:22:01,577 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@217420df and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 09:22:01, skipping insertion in model container [2023-11-23 21:22:01,578 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 23.11 09:22:00" (2/3) ... [2023-11-23 21:22:01,578 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@217420df and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 23.11 09:22:01, skipping insertion in model container [2023-11-23 21:22:01,578 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 09:22:01" (3/3) ... [2023-11-23 21:22:01,579 INFO L112 eAbstractionObserver]: Analyzing ICFG minepump_spec5_product36.cil.c [2023-11-23 21:22:01,597 INFO L203 ceAbstractionStarter]: Automizer settings: Hoare:true NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2023-11-23 21:22:01,597 INFO L162 ceAbstractionStarter]: Applying trace abstraction to program that has 1 error locations. [2023-11-23 21:22:01,645 INFO L356 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2023-11-23 21:22:01,653 INFO L357 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mHoare=true, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=LoopHeads, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@48023cf4, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2023-11-23 21:22:01,653 INFO L358 AbstractCegarLoop]: Starting to check reachability of 1 error locations. [2023-11-23 21:22:01,657 INFO L276 IsEmpty]: Start isEmpty. Operand has 51 states, 33 states have (on average 1.4242424242424243) internal successors, (47), 39 states have internal predecessors, (47), 10 states have call successors, (10), 6 states have call predecessors, (10), 6 states have return successors, (10), 9 states have call predecessors, (10), 10 states have call successors, (10) [2023-11-23 21:22:01,667 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 22 [2023-11-23 21:22:01,668 INFO L187 NwaCegarLoop]: Found error trace [2023-11-23 21:22:01,668 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-23 21:22:01,669 INFO L420 AbstractCegarLoop]: === Iteration 1 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-23 21:22:01,673 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-23 21:22:01,674 INFO L85 PathProgramCache]: Analyzing trace with hash 1010389522, now seen corresponding path program 1 times [2023-11-23 21:22:01,681 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-11-23 21:22:01,682 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [142306124] [2023-11-23 21:22:01,682 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-23 21:22:01,682 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-23 21:22:01,791 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-23 21:22:01,910 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-11-23 21:22:01,911 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-11-23 21:22:01,911 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [142306124] [2023-11-23 21:22:01,912 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [142306124] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-23 21:22:01,912 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-23 21:22:01,913 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2023-11-23 21:22:01,914 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [176048808] [2023-11-23 21:22:01,915 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-23 21:22:01,920 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2023-11-23 21:22:01,922 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-11-23 21:22:01,966 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2023-11-23 21:22:01,967 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-23 21:22:01,969 INFO L87 Difference]: Start difference. First operand has 51 states, 33 states have (on average 1.4242424242424243) internal successors, (47), 39 states have internal predecessors, (47), 10 states have call successors, (10), 6 states have call predecessors, (10), 6 states have return successors, (10), 9 states have call predecessors, (10), 10 states have call successors, (10) Second operand has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2023-11-23 21:22:02,088 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-23 21:22:02,090 INFO L93 Difference]: Finished difference Result 100 states and 135 transitions. [2023-11-23 21:22:02,091 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2023-11-23 21:22:02,093 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) Word has length 21 [2023-11-23 21:22:02,094 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-23 21:22:02,104 INFO L225 Difference]: With dead ends: 100 [2023-11-23 21:22:02,104 INFO L226 Difference]: Without dead ends: 46 [2023-11-23 21:22:02,109 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2023-11-23 21:22:02,116 INFO L413 NwaCegarLoop]: 49 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 15 mSolverCounterSat, 1 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 49 SdHoareTripleChecker+Invalid, 16 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 1 IncrementalHoareTripleChecker+Valid, 15 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-11-23 21:22:02,118 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 49 Invalid, 16 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [1 Valid, 15 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-11-23 21:22:02,137 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 46 states. [2023-11-23 21:22:02,171 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 46 to 46. [2023-11-23 21:22:02,173 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 46 states, 30 states have (on average 1.3) internal successors, (39), 35 states have internal predecessors, (39), 10 states have call successors, (10), 6 states have call predecessors, (10), 5 states have return successors, (9), 8 states have call predecessors, (9), 9 states have call successors, (9) [2023-11-23 21:22:02,179 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 46 states to 46 states and 58 transitions. [2023-11-23 21:22:02,181 INFO L78 Accepts]: Start accepts. Automaton has 46 states and 58 transitions. Word has length 21 [2023-11-23 21:22:02,181 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-23 21:22:02,183 INFO L495 AbstractCegarLoop]: Abstraction has 46 states and 58 transitions. [2023-11-23 21:22:02,183 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 7.0) internal successors, (14), 2 states have internal predecessors, (14), 1 states have call successors, (4), 2 states have call predecessors, (4), 1 states have return successors, (2), 1 states have call predecessors, (2), 1 states have call successors, (2) [2023-11-23 21:22:02,184 INFO L276 IsEmpty]: Start isEmpty. Operand 46 states and 58 transitions. [2023-11-23 21:22:02,187 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 25 [2023-11-23 21:22:02,188 INFO L187 NwaCegarLoop]: Found error trace [2023-11-23 21:22:02,189 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-23 21:22:02,190 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2023-11-23 21:22:02,190 INFO L420 AbstractCegarLoop]: === Iteration 2 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-23 21:22:02,192 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-23 21:22:02,192 INFO L85 PathProgramCache]: Analyzing trace with hash 1331634567, now seen corresponding path program 1 times [2023-11-23 21:22:02,192 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-11-23 21:22:02,193 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1530799507] [2023-11-23 21:22:02,193 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-23 21:22:02,193 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-23 21:22:02,224 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-23 21:22:02,507 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-11-23 21:22:02,507 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-11-23 21:22:02,527 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1530799507] [2023-11-23 21:22:02,527 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1530799507] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-23 21:22:02,528 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-23 21:22:02,528 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2023-11-23 21:22:02,528 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1552164295] [2023-11-23 21:22:02,528 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-23 21:22:02,530 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2023-11-23 21:22:02,530 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-11-23 21:22:02,531 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2023-11-23 21:22:02,531 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=13, Invalid=43, Unknown=0, NotChecked=0, Total=56 [2023-11-23 21:22:02,532 INFO L87 Difference]: Start difference. First operand 46 states and 58 transitions. Second operand has 8 states, 7 states have (on average 2.5714285714285716) internal successors, (18), 6 states have internal predecessors, (18), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-11-23 21:22:03,197 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-23 21:22:03,198 INFO L93 Difference]: Finished difference Result 191 states and 270 transitions. [2023-11-23 21:22:03,198 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2023-11-23 21:22:03,198 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 2.5714285714285716) internal successors, (18), 6 states have internal predecessors, (18), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 24 [2023-11-23 21:22:03,199 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-23 21:22:03,207 INFO L225 Difference]: With dead ends: 191 [2023-11-23 21:22:03,208 INFO L226 Difference]: Without dead ends: 134 [2023-11-23 21:22:03,214 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 21 GetRequests, 4 SyntacticMatches, 0 SemanticMatches, 17 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 46 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=71, Invalid=271, Unknown=0, NotChecked=0, Total=342 [2023-11-23 21:22:03,218 INFO L413 NwaCegarLoop]: 92 mSDtfsCounter, 110 mSDsluCounter, 303 mSDsCounter, 0 mSdLazyCounter, 421 mSolverCounterSat, 26 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 113 SdHoareTripleChecker+Valid, 395 SdHoareTripleChecker+Invalid, 447 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 26 IncrementalHoareTripleChecker+Valid, 421 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2023-11-23 21:22:03,222 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [113 Valid, 395 Invalid, 447 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [26 Valid, 421 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2023-11-23 21:22:03,223 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 134 states. [2023-11-23 21:22:03,256 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 134 to 110. [2023-11-23 21:22:03,257 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 110 states, 72 states have (on average 1.2222222222222223) internal successors, (88), 78 states have internal predecessors, (88), 23 states have call successors, (23), 16 states have call predecessors, (23), 14 states have return successors, (38), 20 states have call predecessors, (38), 20 states have call successors, (38) [2023-11-23 21:22:03,261 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 110 states to 110 states and 149 transitions. [2023-11-23 21:22:03,261 INFO L78 Accepts]: Start accepts. Automaton has 110 states and 149 transitions. Word has length 24 [2023-11-23 21:22:03,262 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-23 21:22:03,262 INFO L495 AbstractCegarLoop]: Abstraction has 110 states and 149 transitions. [2023-11-23 21:22:03,262 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 2.5714285714285716) internal successors, (18), 6 states have internal predecessors, (18), 2 states have call successors, (3), 1 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-11-23 21:22:03,262 INFO L276 IsEmpty]: Start isEmpty. Operand 110 states and 149 transitions. [2023-11-23 21:22:03,264 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 28 [2023-11-23 21:22:03,265 INFO L187 NwaCegarLoop]: Found error trace [2023-11-23 21:22:03,265 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-23 21:22:03,265 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2023-11-23 21:22:03,265 INFO L420 AbstractCegarLoop]: === Iteration 3 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-23 21:22:03,266 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-23 21:22:03,266 INFO L85 PathProgramCache]: Analyzing trace with hash 1030509727, now seen corresponding path program 1 times [2023-11-23 21:22:03,266 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-11-23 21:22:03,267 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [153787202] [2023-11-23 21:22:03,267 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-23 21:22:03,267 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-23 21:22:03,312 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-23 21:22:03,694 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-11-23 21:22:03,694 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-11-23 21:22:03,695 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [153787202] [2023-11-23 21:22:03,695 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [153787202] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-23 21:22:03,698 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-23 21:22:03,698 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2023-11-23 21:22:03,699 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1618029134] [2023-11-23 21:22:03,700 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-23 21:22:03,701 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2023-11-23 21:22:03,705 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-11-23 21:22:03,706 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2023-11-23 21:22:03,707 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2023-11-23 21:22:03,707 INFO L87 Difference]: Start difference. First operand 110 states and 149 transitions. Second operand has 5 states, 5 states have (on average 4.2) internal successors, (21), 5 states have internal predecessors, (21), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-11-23 21:22:03,884 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-23 21:22:03,884 INFO L93 Difference]: Finished difference Result 346 states and 473 transitions. [2023-11-23 21:22:03,885 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 6 states. [2023-11-23 21:22:03,885 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 5 states have (on average 4.2) internal successors, (21), 5 states have internal predecessors, (21), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) Word has length 27 [2023-11-23 21:22:03,886 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-23 21:22:03,892 INFO L225 Difference]: With dead ends: 346 [2023-11-23 21:22:03,892 INFO L226 Difference]: Without dead ends: 184 [2023-11-23 21:22:03,898 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 7 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 4 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=13, Invalid=17, Unknown=0, NotChecked=0, Total=30 [2023-11-23 21:22:03,901 INFO L413 NwaCegarLoop]: 46 mSDtfsCounter, 89 mSDsluCounter, 141 mSDsCounter, 0 mSdLazyCounter, 76 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 90 SdHoareTripleChecker+Valid, 187 SdHoareTripleChecker+Invalid, 84 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 76 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2023-11-23 21:22:03,903 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [90 Valid, 187 Invalid, 84 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 76 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2023-11-23 21:22:03,906 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 184 states. [2023-11-23 21:22:03,941 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 184 to 116. [2023-11-23 21:22:03,944 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 116 states, 78 states have (on average 1.2435897435897436) internal successors, (97), 82 states have internal predecessors, (97), 20 states have call successors, (20), 18 states have call predecessors, (20), 17 states have return successors, (20), 19 states have call predecessors, (20), 19 states have call successors, (20) [2023-11-23 21:22:03,948 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 116 states to 116 states and 137 transitions. [2023-11-23 21:22:03,948 INFO L78 Accepts]: Start accepts. Automaton has 116 states and 137 transitions. Word has length 27 [2023-11-23 21:22:03,949 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-23 21:22:03,950 INFO L495 AbstractCegarLoop]: Abstraction has 116 states and 137 transitions. [2023-11-23 21:22:03,950 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 5 states have (on average 4.2) internal successors, (21), 5 states have internal predecessors, (21), 2 states have call successors, (3), 2 states have call predecessors, (3), 1 states have return successors, (2), 2 states have call predecessors, (2), 2 states have call successors, (2) [2023-11-23 21:22:03,950 INFO L276 IsEmpty]: Start isEmpty. Operand 116 states and 137 transitions. [2023-11-23 21:22:03,955 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 31 [2023-11-23 21:22:03,955 INFO L187 NwaCegarLoop]: Found error trace [2023-11-23 21:22:03,955 INFO L195 NwaCegarLoop]: trace histogram [2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-23 21:22:03,956 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2 [2023-11-23 21:22:03,956 INFO L420 AbstractCegarLoop]: === Iteration 4 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-23 21:22:03,959 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-23 21:22:03,959 INFO L85 PathProgramCache]: Analyzing trace with hash 542672941, now seen corresponding path program 1 times [2023-11-23 21:22:03,960 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-11-23 21:22:03,960 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1379323026] [2023-11-23 21:22:03,960 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-23 21:22:03,960 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-23 21:22:04,002 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-23 21:22:04,340 INFO L134 CoverageAnalysis]: Checked inductivity of 2 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-11-23 21:22:04,340 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-11-23 21:22:04,340 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1379323026] [2023-11-23 21:22:04,341 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1379323026] provided 1 perfect and 0 imperfect interpolant sequences [2023-11-23 21:22:04,341 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2023-11-23 21:22:04,341 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [8] imperfect sequences [] total 8 [2023-11-23 21:22:04,341 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1819730219] [2023-11-23 21:22:04,341 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2023-11-23 21:22:04,342 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 8 states [2023-11-23 21:22:04,342 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-11-23 21:22:04,343 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 8 interpolants. [2023-11-23 21:22:04,343 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=14, Invalid=42, Unknown=0, NotChecked=0, Total=56 [2023-11-23 21:22:04,344 INFO L87 Difference]: Start difference. First operand 116 states and 137 transitions. Second operand has 8 states, 7 states have (on average 3.142857142857143) internal successors, (22), 7 states have internal predecessors, (22), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2023-11-23 21:22:04,904 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-23 21:22:04,905 INFO L93 Difference]: Finished difference Result 350 states and 434 transitions. [2023-11-23 21:22:04,905 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2023-11-23 21:22:04,906 INFO L78 Accepts]: Start accepts. Automaton has has 8 states, 7 states have (on average 3.142857142857143) internal successors, (22), 7 states have internal predecessors, (22), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) Word has length 30 [2023-11-23 21:22:04,906 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-23 21:22:04,908 INFO L225 Difference]: With dead ends: 350 [2023-11-23 21:22:04,909 INFO L226 Difference]: Without dead ends: 224 [2023-11-23 21:22:04,910 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 22 GetRequests, 7 SyntacticMatches, 0 SemanticMatches, 15 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 33 ImplicationChecksByTransitivity, 0.2s TimeCoverageRelationStatistics Valid=69, Invalid=203, Unknown=0, NotChecked=0, Total=272 [2023-11-23 21:22:04,911 INFO L413 NwaCegarLoop]: 89 mSDtfsCounter, 133 mSDsluCounter, 315 mSDsCounter, 0 mSdLazyCounter, 374 mSolverCounterSat, 62 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 140 SdHoareTripleChecker+Valid, 404 SdHoareTripleChecker+Invalid, 436 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 62 IncrementalHoareTripleChecker+Valid, 374 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.4s IncrementalHoareTripleChecker+Time [2023-11-23 21:22:04,912 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [140 Valid, 404 Invalid, 436 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [62 Valid, 374 Invalid, 0 Unknown, 0 Unchecked, 0.4s Time] [2023-11-23 21:22:04,913 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 224 states. [2023-11-23 21:22:04,936 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 224 to 165. [2023-11-23 21:22:04,937 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 165 states, 112 states have (on average 1.25) internal successors, (140), 119 states have internal predecessors, (140), 28 states have call successors, (28), 24 states have call predecessors, (28), 24 states have return successors, (29), 27 states have call predecessors, (29), 27 states have call successors, (29) [2023-11-23 21:22:04,939 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 165 states to 165 states and 197 transitions. [2023-11-23 21:22:04,939 INFO L78 Accepts]: Start accepts. Automaton has 165 states and 197 transitions. Word has length 30 [2023-11-23 21:22:04,939 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-23 21:22:04,940 INFO L495 AbstractCegarLoop]: Abstraction has 165 states and 197 transitions. [2023-11-23 21:22:04,940 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 8 states, 7 states have (on average 3.142857142857143) internal successors, (22), 7 states have internal predecessors, (22), 3 states have call successors, (4), 3 states have call predecessors, (4), 2 states have return successors, (3), 2 states have call predecessors, (3), 3 states have call successors, (3) [2023-11-23 21:22:04,940 INFO L276 IsEmpty]: Start isEmpty. Operand 165 states and 197 transitions. [2023-11-23 21:22:04,943 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 48 [2023-11-23 21:22:04,943 INFO L187 NwaCegarLoop]: Found error trace [2023-11-23 21:22:04,943 INFO L195 NwaCegarLoop]: trace histogram [3, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-23 21:22:04,943 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3 [2023-11-23 21:22:04,944 INFO L420 AbstractCegarLoop]: === Iteration 5 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-23 21:22:04,944 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-23 21:22:04,944 INFO L85 PathProgramCache]: Analyzing trace with hash 2072109738, now seen corresponding path program 1 times [2023-11-23 21:22:04,945 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-11-23 21:22:04,945 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2087329627] [2023-11-23 21:22:04,945 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-23 21:22:04,945 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-23 21:22:04,982 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-23 21:22:05,410 INFO L134 CoverageAnalysis]: Checked inductivity of 19 backedges. 2 proven. 11 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2023-11-23 21:22:05,411 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-11-23 21:22:05,411 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2087329627] [2023-11-23 21:22:05,411 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2087329627] provided 0 perfect and 1 imperfect interpolant sequences [2023-11-23 21:22:05,411 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [560255903] [2023-11-23 21:22:05,412 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-23 21:22:05,412 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-11-23 21:22:05,412 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 [2023-11-23 21:22:05,414 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-11-23 21:22:05,436 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2023-11-23 21:22:05,516 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-23 21:22:05,520 INFO L262 TraceCheckSpWp]: Trace formula consists of 235 conjuncts, 23 conjunts are in the unsatisfiable core [2023-11-23 21:22:05,527 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-11-23 21:22:05,724 INFO L134 CoverageAnalysis]: Checked inductivity of 19 backedges. 18 proven. 1 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2023-11-23 21:22:05,725 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-11-23 21:22:06,252 INFO L134 CoverageAnalysis]: Checked inductivity of 19 backedges. 12 proven. 1 refuted. 0 times theorem prover too weak. 6 trivial. 0 not checked. [2023-11-23 21:22:06,252 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [560255903] provided 0 perfect and 2 imperfect interpolant sequences [2023-11-23 21:22:06,253 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1515175075] [2023-11-23 21:22:06,277 INFO L159 IcfgInterpreter]: Started Sifa with 31 locations of interest [2023-11-23 21:22:06,277 INFO L166 IcfgInterpreter]: Building call graph [2023-11-23 21:22:06,282 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-11-23 21:22:06,288 INFO L176 IcfgInterpreter]: Starting interpretation [2023-11-23 21:22:06,289 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-11-23 21:22:16,422 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 137 for LOIs [2023-11-23 21:22:16,524 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 36 for LOIs [2023-11-23 21:22:16,732 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 43 for LOIs [2023-11-23 21:22:16,748 INFO L180 IcfgInterpreter]: Interpretation finished [2023-11-23 21:22:20,384 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '2397#(and (= ~waterLevel~0 |timeShift_getWaterLevel_#res#1|) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~2#1| 0)) (<= ~pumpRunning~0 2147483647) (<= 0 (+ 2147483648 |old(~pumpRunning~0)|)) (<= |old(~pumpRunning~0)| 2147483647) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~2#1|) (= |timeShift___utac_acc__Specification5_spec__3_~tmp~7#1| |timeShift_getWaterLevel_#res#1|) (<= 0 (+ 2147483648 |timeShift_getWaterLevel_#res#1|)) (<= 0 (+ ~pumpRunning~0 2147483648)) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~7#1| 2)) (<= |timeShift___utac_acc__Specification5_spec__3_~tmp~7#1| 2147483647) (= ~switchedOnBeforeTS~0 0))' at error location [2023-11-23 21:22:20,385 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-11-23 21:22:20,385 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-11-23 21:22:20,385 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [11, 8, 9] total 21 [2023-11-23 21:22:20,385 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1148766334] [2023-11-23 21:22:20,386 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-11-23 21:22:20,386 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2023-11-23 21:22:20,387 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-11-23 21:22:20,387 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2023-11-23 21:22:20,389 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=240, Invalid=1830, Unknown=0, NotChecked=0, Total=2070 [2023-11-23 21:22:20,389 INFO L87 Difference]: Start difference. First operand 165 states and 197 transitions. Second operand has 21 states, 19 states have (on average 3.9473684210526314) internal successors, (75), 20 states have internal predecessors, (75), 8 states have call successors, (14), 6 states have call predecessors, (14), 7 states have return successors, (13), 7 states have call predecessors, (13), 8 states have call successors, (13) [2023-11-23 21:22:23,541 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-23 21:22:23,542 INFO L93 Difference]: Finished difference Result 900 states and 1177 transitions. [2023-11-23 21:22:23,542 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 67 states. [2023-11-23 21:22:23,543 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 19 states have (on average 3.9473684210526314) internal successors, (75), 20 states have internal predecessors, (75), 8 states have call successors, (14), 6 states have call predecessors, (14), 7 states have return successors, (13), 7 states have call predecessors, (13), 8 states have call successors, (13) Word has length 47 [2023-11-23 21:22:23,543 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-23 21:22:23,552 INFO L225 Difference]: With dead ends: 900 [2023-11-23 21:22:23,553 INFO L226 Difference]: Without dead ends: 613 [2023-11-23 21:22:23,561 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 239 GetRequests, 130 SyntacticMatches, 7 SemanticMatches, 102 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 3612 ImplicationChecksByTransitivity, 5.4s TimeCoverageRelationStatistics Valid=1244, Invalid=9468, Unknown=0, NotChecked=0, Total=10712 [2023-11-23 21:22:23,562 INFO L413 NwaCegarLoop]: 127 mSDtfsCounter, 876 mSDsluCounter, 753 mSDsCounter, 0 mSdLazyCounter, 1441 mSolverCounterSat, 753 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 883 SdHoareTripleChecker+Valid, 880 SdHoareTripleChecker+Invalid, 2194 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 753 IncrementalHoareTripleChecker+Valid, 1441 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.5s IncrementalHoareTripleChecker+Time [2023-11-23 21:22:23,563 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [883 Valid, 880 Invalid, 2194 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [753 Valid, 1441 Invalid, 0 Unknown, 0 Unchecked, 1.5s Time] [2023-11-23 21:22:23,564 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 613 states. [2023-11-23 21:22:23,644 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 613 to 500. [2023-11-23 21:22:23,645 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 500 states, 339 states have (on average 1.2005899705014749) internal successors, (407), 370 states have internal predecessors, (407), 79 states have call successors, (79), 71 states have call predecessors, (79), 81 states have return successors, (104), 77 states have call predecessors, (104), 77 states have call successors, (104) [2023-11-23 21:22:23,650 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 500 states to 500 states and 590 transitions. [2023-11-23 21:22:23,650 INFO L78 Accepts]: Start accepts. Automaton has 500 states and 590 transitions. Word has length 47 [2023-11-23 21:22:23,651 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-23 21:22:23,651 INFO L495 AbstractCegarLoop]: Abstraction has 500 states and 590 transitions. [2023-11-23 21:22:23,652 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 19 states have (on average 3.9473684210526314) internal successors, (75), 20 states have internal predecessors, (75), 8 states have call successors, (14), 6 states have call predecessors, (14), 7 states have return successors, (13), 7 states have call predecessors, (13), 8 states have call successors, (13) [2023-11-23 21:22:23,652 INFO L276 IsEmpty]: Start isEmpty. Operand 500 states and 590 transitions. [2023-11-23 21:22:23,657 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 53 [2023-11-23 21:22:23,657 INFO L187 NwaCegarLoop]: Found error trace [2023-11-23 21:22:23,658 INFO L195 NwaCegarLoop]: trace histogram [4, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2023-11-23 21:22:23,681 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2023-11-23 21:22:23,880 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-11-23 21:22:23,880 INFO L420 AbstractCegarLoop]: === Iteration 6 === Targeting timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION === [timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION] === [2023-11-23 21:22:23,881 INFO L160 PredicateUnifier]: Initialized classic predicate unifier [2023-11-23 21:22:23,881 INFO L85 PathProgramCache]: Analyzing trace with hash 583103422, now seen corresponding path program 1 times [2023-11-23 21:22:23,881 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2023-11-23 21:22:23,881 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [611033971] [2023-11-23 21:22:23,881 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-23 21:22:23,882 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2023-11-23 21:22:23,908 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-23 21:22:24,402 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 4 proven. 12 refuted. 0 times theorem prover too weak. 12 trivial. 0 not checked. [2023-11-23 21:22:24,402 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2023-11-23 21:22:24,402 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [611033971] [2023-11-23 21:22:24,402 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [611033971] provided 0 perfect and 1 imperfect interpolant sequences [2023-11-23 21:22:24,403 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [608303342] [2023-11-23 21:22:24,403 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2023-11-23 21:22:24,403 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2023-11-23 21:22:24,403 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 [2023-11-23 21:22:24,404 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2023-11-23 21:22:24,420 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2023-11-23 21:22:24,493 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2023-11-23 21:22:24,495 INFO L262 TraceCheckSpWp]: Trace formula consists of 249 conjuncts, 25 conjunts are in the unsatisfiable core [2023-11-23 21:22:24,503 INFO L285 TraceCheckSpWp]: Computing forward predicates... [2023-11-23 21:22:24,901 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 13 proven. 13 refuted. 0 times theorem prover too weak. 2 trivial. 0 not checked. [2023-11-23 21:22:24,901 INFO L327 TraceCheckSpWp]: Computing backward predicates... [2023-11-23 21:22:25,464 INFO L134 CoverageAnalysis]: Checked inductivity of 28 backedges. 7 proven. 2 refuted. 0 times theorem prover too weak. 19 trivial. 0 not checked. [2023-11-23 21:22:25,465 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [608303342] provided 0 perfect and 2 imperfect interpolant sequences [2023-11-23 21:22:25,465 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1800077455] [2023-11-23 21:22:25,468 INFO L159 IcfgInterpreter]: Started Sifa with 31 locations of interest [2023-11-23 21:22:25,468 INFO L166 IcfgInterpreter]: Building call graph [2023-11-23 21:22:25,469 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2023-11-23 21:22:25,469 INFO L176 IcfgInterpreter]: Starting interpretation [2023-11-23 21:22:25,469 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2023-11-23 21:22:31,805 INFO L197 IcfgInterpreter]: Interpreting procedure waterRise with input of size 144 for LOIs [2023-11-23 21:22:31,896 INFO L197 IcfgInterpreter]: Interpreting procedure timeShift with input of size 36 for LOIs [2023-11-23 21:22:32,058 INFO L197 IcfgInterpreter]: Interpreting procedure isPumpRunning with input of size 43 for LOIs [2023-11-23 21:22:32,077 INFO L180 IcfgInterpreter]: Interpretation finished [2023-11-23 21:22:35,198 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4806#(and (= ~waterLevel~0 |timeShift_getWaterLevel_#res#1|) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp___0~2#1| 0)) (<= ~pumpRunning~0 2147483647) (<= 0 (+ 2147483648 |old(~pumpRunning~0)|)) (<= |old(~pumpRunning~0)| 2147483647) (= ~pumpRunning~0 |timeShift___utac_acc__Specification5_spec__3_~tmp___0~2#1|) (= |timeShift___utac_acc__Specification5_spec__3_~tmp~7#1| |timeShift_getWaterLevel_#res#1|) (<= 0 (+ 2147483648 |timeShift_getWaterLevel_#res#1|)) (<= 0 (+ ~pumpRunning~0 2147483648)) (not (= |timeShift___utac_acc__Specification5_spec__3_~tmp~7#1| 2)) (<= |timeShift___utac_acc__Specification5_spec__3_~tmp~7#1| 2147483647) (= ~switchedOnBeforeTS~0 0))' at error location [2023-11-23 21:22:35,198 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2023-11-23 21:22:35,198 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2023-11-23 21:22:35,198 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [12, 13, 8] total 22 [2023-11-23 21:22:35,198 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [617836021] [2023-11-23 21:22:35,198 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2023-11-23 21:22:35,199 INFO L571 AbstractCegarLoop]: INTERPOLANT automaton has 22 states [2023-11-23 21:22:35,199 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2023-11-23 21:22:35,200 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 22 interpolants. [2023-11-23 21:22:35,202 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=255, Invalid=2001, Unknown=0, NotChecked=0, Total=2256 [2023-11-23 21:22:35,202 INFO L87 Difference]: Start difference. First operand 500 states and 590 transitions. Second operand has 22 states, 19 states have (on average 3.9473684210526314) internal successors, (75), 20 states have internal predecessors, (75), 9 states have call successors, (17), 7 states have call predecessors, (17), 9 states have return successors, (16), 9 states have call predecessors, (16), 9 states have call successors, (16) [2023-11-23 21:22:38,034 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2023-11-23 21:22:38,035 INFO L93 Difference]: Finished difference Result 1738 states and 2162 transitions. [2023-11-23 21:22:38,035 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 69 states. [2023-11-23 21:22:38,036 INFO L78 Accepts]: Start accepts. Automaton has has 22 states, 19 states have (on average 3.9473684210526314) internal successors, (75), 20 states have internal predecessors, (75), 9 states have call successors, (17), 7 states have call predecessors, (17), 9 states have return successors, (16), 9 states have call predecessors, (16), 9 states have call successors, (16) Word has length 52 [2023-11-23 21:22:38,038 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2023-11-23 21:22:38,039 INFO L225 Difference]: With dead ends: 1738 [2023-11-23 21:22:38,039 INFO L226 Difference]: Without dead ends: 0 [2023-11-23 21:22:38,049 INFO L412 NwaCegarLoop]: 0 DeclaredPredicates, 242 GetRequests, 125 SyntacticMatches, 9 SemanticMatches, 108 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 4153 ImplicationChecksByTransitivity, 5.1s TimeCoverageRelationStatistics Valid=1629, Invalid=10361, Unknown=0, NotChecked=0, Total=11990 [2023-11-23 21:22:38,051 INFO L413 NwaCegarLoop]: 108 mSDtfsCounter, 497 mSDsluCounter, 735 mSDsCounter, 0 mSdLazyCounter, 1202 mSolverCounterSat, 320 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 502 SdHoareTripleChecker+Valid, 843 SdHoareTripleChecker+Invalid, 1522 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 320 IncrementalHoareTripleChecker+Valid, 1202 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.0s IncrementalHoareTripleChecker+Time [2023-11-23 21:22:38,052 INFO L414 NwaCegarLoop]: SdHoareTripleChecker [502 Valid, 843 Invalid, 1522 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [320 Valid, 1202 Invalid, 0 Unknown, 0 Unchecked, 1.0s Time] [2023-11-23 21:22:38,052 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 0 states. [2023-11-23 21:22:38,052 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 0 to 0. [2023-11-23 21:22:38,052 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 0 states, 0 states have (on average 0.0) internal successors, (0), 0 states have internal predecessors, (0), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2023-11-23 21:22:38,053 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 0 states to 0 states and 0 transitions. [2023-11-23 21:22:38,053 INFO L78 Accepts]: Start accepts. Automaton has 0 states and 0 transitions. Word has length 52 [2023-11-23 21:22:38,053 INFO L84 Accepts]: Finished accepts. word is rejected. [2023-11-23 21:22:38,053 INFO L495 AbstractCegarLoop]: Abstraction has 0 states and 0 transitions. [2023-11-23 21:22:38,054 INFO L496 AbstractCegarLoop]: INTERPOLANT automaton has has 22 states, 19 states have (on average 3.9473684210526314) internal successors, (75), 20 states have internal predecessors, (75), 9 states have call successors, (17), 7 states have call predecessors, (17), 9 states have return successors, (16), 9 states have call predecessors, (16), 9 states have call successors, (16) [2023-11-23 21:22:38,054 INFO L276 IsEmpty]: Start isEmpty. Operand 0 states and 0 transitions. [2023-11-23 21:22:38,054 INFO L282 IsEmpty]: Finished isEmpty. No accepting run. [2023-11-23 21:22:38,061 INFO L805 garLoopResultBuilder]: Registering result SAFE for location timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION (0 of 1 remaining) [2023-11-23 21:22:38,078 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Forceful destruction successful, exit code 0 [2023-11-23 21:22:38,268 WARN L477 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable5 [2023-11-23 21:22:38,270 INFO L343 DoubleDeckerVisitor]: Before removal of dead ends 0 states and 0 transitions. [2023-11-23 21:22:43,405 INFO L899 garLoopResultBuilder]: For program point processEnvironment__wrappee__baseEXIT(lines 140 146) no Hoare annotation was computed. [2023-11-23 21:22:43,405 INFO L902 garLoopResultBuilder]: At program point processEnvironment__wrappee__baseFINAL(lines 140 146) the Hoare annotation is: true [2023-11-23 21:22:43,405 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 900 911) the Hoare annotation is: true [2023-11-23 21:22:43,405 INFO L899 garLoopResultBuilder]: For program point changeMethaneLevelEXIT(lines 900 911) no Hoare annotation was computed. [2023-11-23 21:22:43,406 INFO L899 garLoopResultBuilder]: For program point cleanupEXIT(lines 727 756) no Hoare annotation was computed. [2023-11-23 21:22:43,406 INFO L895 garLoopResultBuilder]: At program point L737-2(lines 737 751) the Hoare annotation is: (let ((.cse3 (= ~switchedOnBeforeTS~0 0)) (.cse5 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (let ((.cse1 (not (= ~pumpRunning~0 0))) (.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse4 (and (not .cse3) .cse5)) (.cse2 (< ~waterLevel~0 2))) (and (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2)) .cse2 (and (= 2 ~waterLevel~0) .cse3)) (or .cse0 .cse1 .cse2 .cse3 (not (= 0 ~systemActive~0))) (or .cse0 .cse4 (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse4 (and .cse2 .cse5) (and (= |old(~pumpRunning~0)| 0) (<= 2 |old(~waterLevel~0)|)))))) [2023-11-23 21:22:43,406 INFO L895 garLoopResultBuilder]: At program point L733(line 733) the Hoare annotation is: (let ((.cse3 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse4 (= ~pumpRunning~0 0)) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse5 (and .cse3 (<= 2 |old(~waterLevel~0)|)))) (and (or .cse0 (and .cse1 .cse2) (and .cse3 (not (= 0 ~systemActive~0)))) (or (not .cse4) (< ~waterLevel~0 2) .cse5) (or (< 1 |old(~waterLevel~0)|) (<= ~waterLevel~0 1)) (or .cse0 (and (or .cse4 (< ~waterLevel~0 1) (= ~waterLevel~0 1)) .cse1 .cse2) (and (not (= |old(~waterLevel~0)| 1)) (or (not .cse3) (not (= |old(~waterLevel~0)| 2))) (<= 1 |old(~waterLevel~0)|))) (or (not (= ~switchedOnBeforeTS~0 0)) .cse5 (= |old(~switchedOnBeforeTS~0)| 0))))) [2023-11-23 21:22:43,406 INFO L899 garLoopResultBuilder]: For program point L733-1(line 733) no Hoare annotation was computed. [2023-11-23 21:22:43,406 INFO L899 garLoopResultBuilder]: For program point L752(lines 727 756) no Hoare annotation was computed. [2023-11-23 21:22:43,407 INFO L899 garLoopResultBuilder]: For program point L748(line 748) no Hoare annotation was computed. [2023-11-23 21:22:43,407 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 727 756) the Hoare annotation is: (let ((.cse3 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse4 (= ~pumpRunning~0 0)) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse5 (and .cse3 (<= 2 |old(~waterLevel~0)|)))) (and (or .cse0 (and .cse1 .cse2) (and .cse3 (not (= 0 ~systemActive~0)))) (or (not .cse4) (< ~waterLevel~0 2) .cse5) (or (< 1 |old(~waterLevel~0)|) (<= ~waterLevel~0 1)) (or .cse0 (and (or .cse4 (< ~waterLevel~0 1) (= ~waterLevel~0 1)) .cse1 .cse2) (and (not (= |old(~waterLevel~0)| 1)) (or (not .cse3) (not (= |old(~waterLevel~0)| 2))) (<= 1 |old(~waterLevel~0)|))) (or (not (= ~switchedOnBeforeTS~0 0)) .cse5 (= |old(~switchedOnBeforeTS~0)| 0))))) [2023-11-23 21:22:43,407 INFO L899 garLoopResultBuilder]: For program point L741(lines 741 745) no Hoare annotation was computed. [2023-11-23 21:22:43,407 INFO L895 garLoopResultBuilder]: At program point L741-1(lines 741 745) the Hoare annotation is: (let ((.cse3 (= ~switchedOnBeforeTS~0 0)) (.cse5 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (let ((.cse1 (not (= ~pumpRunning~0 0))) (.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse4 (and (not .cse3) .cse5)) (.cse2 (< ~waterLevel~0 2))) (and (or .cse0 .cse1 (not (= |old(~waterLevel~0)| 2)) .cse2 (and (= 2 ~waterLevel~0) .cse3)) (or .cse0 .cse1 .cse2 .cse3 (not (= 0 ~systemActive~0))) (or .cse0 .cse4 (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse4 (and .cse2 .cse5) (and (= |old(~pumpRunning~0)| 0) (<= 2 |old(~waterLevel~0)|)))))) [2023-11-23 21:22:43,408 INFO L899 garLoopResultBuilder]: For program point L857(lines 857 863) no Hoare annotation was computed. [2023-11-23 21:22:43,408 INFO L899 garLoopResultBuilder]: For program point L127-1(lines 127 133) no Hoare annotation was computed. [2023-11-23 21:22:43,408 INFO L899 garLoopResultBuilder]: For program point L156(lines 156 164) no Hoare annotation was computed. [2023-11-23 21:22:43,408 INFO L899 garLoopResultBuilder]: For program point L152(lines 152 169) no Hoare annotation was computed. [2023-11-23 21:22:43,408 INFO L895 garLoopResultBuilder]: At program point L854(line 854) the Hoare annotation is: (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse9 (= 0 ~systemActive~0)) (.cse4 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (let ((.cse2 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse6 (and (not (= ~switchedOnBeforeTS~0 0)) .cse4)) (.cse5 (and .cse0 (not .cse9))) (.cse7 (not (= ~pumpRunning~0 0))) (.cse3 (= |timeShift___utac_acc__Specification5_spec__3_~tmp~7#1| ~waterLevel~0)) (.cse1 (not (= |old(~waterLevel~0)| 2)))) (and (or (not .cse0) .cse1) (or .cse2 (and .cse3 .cse4 (< ~waterLevel~0 (+ |old(~waterLevel~0)| 1))) .cse5 .cse6) (or (and (or .cse7 (< ~waterLevel~0 2)) .cse4) (and .cse0 (<= 2 |old(~waterLevel~0)|))) (let ((.cse8 (<= 1 |old(~waterLevel~0)|))) (or (and .cse7 (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) .cse3 .cse8) (and .cse3 (= |old(~waterLevel~0)| ~waterLevel~0)) (and (not (= |old(~waterLevel~0)| 1)) .cse8))) (or .cse2 .cse6 (= |old(~switchedOnBeforeTS~0)| 0)) (or (< 1 |old(~waterLevel~0)|) .cse7 .cse5 .cse9) (or (and .cse7 .cse3 (= ~waterLevel~0 1)) .cse1)))) [2023-11-23 21:22:43,409 INFO L899 garLoopResultBuilder]: For program point L854-1(line 854) no Hoare annotation was computed. [2023-11-23 21:22:43,409 INFO L899 garLoopResultBuilder]: For program point L120-2(lines 116 138) no Hoare annotation was computed. [2023-11-23 21:22:43,409 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 113 139) the Hoare annotation is: (let ((.cse9 (= ~pumpRunning~0 0)) (.cse11 (<= 2 |old(~waterLevel~0)|)) (.cse10 (not (= |old(~waterLevel~0)| 2))) (.cse8 (= |old(~pumpRunning~0)| 0)) (.cse5 (= 0 ~systemActive~0))) (let ((.cse3 (and .cse8 (not .cse5))) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse6 (and .cse11 .cse10)) (.cse4 (not .cse9)) (.cse7 (and .cse8 .cse11)) (.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (and (or .cse0 (and .cse1 .cse2) .cse3) (or .cse4 .cse3 .cse5 .cse6) (or .cse1 .cse6) (or .cse4 (< ~waterLevel~0 2) .cse7) (or (not .cse8) .cse9 .cse10) (or (not (= ~switchedOnBeforeTS~0 0)) .cse7 (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse0 (and (not (= |old(~waterLevel~0)| 1)) .cse10 (<= 1 |old(~waterLevel~0)|)) .cse2)))) [2023-11-23 21:22:43,409 INFO L895 garLoopResultBuilder]: At program point L839(line 839) the Hoare annotation is: (let ((.cse9 (= ~pumpRunning~0 0)) (.cse11 (<= 2 |old(~waterLevel~0)|)) (.cse10 (not (= |old(~waterLevel~0)| 2))) (.cse8 (= |old(~pumpRunning~0)| 0)) (.cse5 (= 0 ~systemActive~0))) (let ((.cse3 (and .cse8 (not .cse5))) (.cse1 (= |old(~waterLevel~0)| ~waterLevel~0)) (.cse6 (and .cse11 .cse10)) (.cse4 (not .cse9)) (.cse7 (and .cse8 .cse11)) (.cse0 (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|))) (.cse2 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (and (or .cse0 (and .cse1 .cse2) .cse3) (or .cse4 .cse3 .cse5 .cse6) (or .cse1 .cse6) (or .cse4 (< ~waterLevel~0 2) .cse7) (or (not .cse8) .cse9 .cse10) (or (not (= ~switchedOnBeforeTS~0 0)) .cse7 (= |old(~switchedOnBeforeTS~0)| 0)) (or .cse0 (and (not (= |old(~waterLevel~0)| 1)) .cse10 (<= 1 |old(~waterLevel~0)|)) .cse2)))) [2023-11-23 21:22:43,410 INFO L899 garLoopResultBuilder]: For program point L839-1(line 839) no Hoare annotation was computed. [2023-11-23 21:22:43,410 INFO L895 garLoopResultBuilder]: At program point L162(line 162) the Hoare annotation is: (let ((.cse2 (= |old(~pumpRunning~0)| 0))) (let ((.cse0 (= |timeShift_processEnvironment_~tmp~0#1| 0)) (.cse1 (= ~pumpRunning~0 ~switchedOnBeforeTS~0)) (.cse3 (and .cse2 (not (= 0 ~systemActive~0))))) (and (or (and .cse0 (<= ~waterLevel~0 1) .cse1) .cse2) (or (< 1 |old(~waterLevel~0)|) .cse3) (or (and (not (= |old(~waterLevel~0)| 1)) (<= 1 |old(~waterLevel~0)|)) (and .cse0 (= |old(~waterLevel~0)| ~waterLevel~0) .cse1)) (or (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|)) .cse3) (not (= |old(~waterLevel~0)| 2))))) [2023-11-23 21:22:43,410 INFO L899 garLoopResultBuilder]: For program point L92(line 92) no Hoare annotation was computed. [2023-11-23 21:22:43,410 INFO L899 garLoopResultBuilder]: For program point L856(lines 856 866) no Hoare annotation was computed. [2023-11-23 21:22:43,410 INFO L899 garLoopResultBuilder]: For program point L852(lines 852 869) no Hoare annotation was computed. [2023-11-23 21:22:43,410 INFO L899 garLoopResultBuilder]: For program point L852-1(lines 844 872) no Hoare annotation was computed. [2023-11-23 21:22:43,410 INFO L899 garLoopResultBuilder]: For program point timeShiftEXIT(lines 113 139) no Hoare annotation was computed. [2023-11-23 21:22:43,410 INFO L899 garLoopResultBuilder]: For program point timeShiftErr0ASSERT_VIOLATIONERROR_FUNCTION(line 92) no Hoare annotation was computed. [2023-11-23 21:22:43,411 INFO L895 garLoopResultBuilder]: At program point L167(line 167) the Hoare annotation is: (let ((.cse3 (= ~pumpRunning~0 ~switchedOnBeforeTS~0))) (let ((.cse0 (= |old(~pumpRunning~0)| 0)) (.cse2 (and (not (= ~switchedOnBeforeTS~0 0)) .cse3)) (.cse1 (not (= |old(~waterLevel~0)| 2)))) (and (or (not .cse0) .cse1) (or (not (= |old(~switchedOnBeforeTS~0)| |old(~pumpRunning~0)|)) .cse2 (not (= 0 ~systemActive~0))) (or .cse0 .cse2) (or (and (<= 2 |old(~waterLevel~0)|) .cse1) (and (not (= ~pumpRunning~0 0)) (or (and (= |old(~waterLevel~0)| (+ ~waterLevel~0 1)) (<= 1 |old(~waterLevel~0)|)) (= |old(~waterLevel~0)| ~waterLevel~0)) (or (< ~waterLevel~0 1) (= ~waterLevel~0 1)) .cse3))))) [2023-11-23 21:22:43,411 INFO L899 garLoopResultBuilder]: For program point L167-1(lines 148 172) no Hoare annotation was computed. [2023-11-23 21:22:43,411 INFO L895 garLoopResultBuilder]: At program point L717(lines 666 718) the Hoare annotation is: (let ((.cse0 (= ~switchedOnBeforeTS~0 0))) (or (and (= 0 ~systemActive~0) .cse0) (not (= ~pumpRunning~0 0)) (< ~waterLevel~0 2) (and (= 2 ~waterLevel~0) .cse0))) [2023-11-23 21:22:43,411 INFO L895 garLoopResultBuilder]: At program point L705-2(lines 697 712) the Hoare annotation is: (or (= 2 ~waterLevel~0) (< ~waterLevel~0 2)) [2023-11-23 21:22:43,411 INFO L899 garLoopResultBuilder]: For program point L668(lines 667 716) no Hoare annotation was computed. [2023-11-23 21:22:43,411 INFO L895 garLoopResultBuilder]: At program point L689(line 689) the Hoare annotation is: (or (= 2 ~waterLevel~0) (< ~waterLevel~0 2)) [2023-11-23 21:22:43,411 INFO L895 garLoopResultBuilder]: At program point L714(lines 667 716) the Hoare annotation is: (let ((.cse0 (= 2 ~waterLevel~0))) (or (< ~waterLevel~0 1) (and (not (= ~pumpRunning~0 0)) .cse0) (= ~waterLevel~0 1) (and .cse0 (= ~switchedOnBeforeTS~0 0)))) [2023-11-23 21:22:43,412 INFO L899 garLoopResultBuilder]: For program point L677(lines 677 683) no Hoare annotation was computed. [2023-11-23 21:22:43,412 INFO L899 garLoopResultBuilder]: For program point L677-1(lines 677 683) no Hoare annotation was computed. [2023-11-23 21:22:43,412 INFO L899 garLoopResultBuilder]: For program point ULTIMATE.startEXIT(line -1) no Hoare annotation was computed. [2023-11-23 21:22:43,412 INFO L899 garLoopResultBuilder]: For program point L810(lines 810 817) no Hoare annotation was computed. [2023-11-23 21:22:43,412 INFO L899 garLoopResultBuilder]: For program point $Ultimate##0(line -1) no Hoare annotation was computed. [2023-11-23 21:22:43,412 INFO L899 garLoopResultBuilder]: For program point L810-2(lines 810 817) no Hoare annotation was computed. [2023-11-23 21:22:43,412 INFO L899 garLoopResultBuilder]: For program point L720(lines 657 724) no Hoare annotation was computed. [2023-11-23 21:22:43,413 INFO L899 garLoopResultBuilder]: For program point L687(lines 687 693) no Hoare annotation was computed. [2023-11-23 21:22:43,413 INFO L899 garLoopResultBuilder]: For program point L687-1(lines 687 693) no Hoare annotation was computed. [2023-11-23 21:22:43,413 INFO L895 garLoopResultBuilder]: At program point L679(line 679) the Hoare annotation is: (or (< ~waterLevel~0 1) (= 2 ~waterLevel~0) (= ~waterLevel~0 1)) [2023-11-23 21:22:43,413 INFO L899 garLoopResultBuilder]: For program point waterRiseEXIT(lines 888 899) no Hoare annotation was computed. [2023-11-23 21:22:43,413 INFO L895 garLoopResultBuilder]: At program point $Ultimate##0(lines 888 899) the Hoare annotation is: (or (= |old(~waterLevel~0)| ~waterLevel~0) (and (not (= |old(~waterLevel~0)| 1)) (not (= |old(~waterLevel~0)| 2)) (<= 1 |old(~waterLevel~0)|))) [2023-11-23 21:22:43,413 INFO L899 garLoopResultBuilder]: For program point isPumpRunningEXIT(lines 200 208) no Hoare annotation was computed. [2023-11-23 21:22:43,414 INFO L902 garLoopResultBuilder]: At program point $Ultimate##0(lines 200 208) the Hoare annotation is: true [2023-11-23 21:22:43,416 INFO L445 BasicCegarLoop]: Path program histogram: [1, 1, 1, 1, 1, 1] [2023-11-23 21:22:43,418 INFO L178 ceAbstractionStarter]: Computing trace abstraction results [2023-11-23 21:22:43,430 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction CFG 23.11 09:22:43 BoogieIcfgContainer [2023-11-23 21:22:43,431 INFO L131 PluginConnector]: ------------------------ END TraceAbstraction---------------------------- [2023-11-23 21:22:43,431 INFO L112 PluginConnector]: ------------------------Witness Printer---------------------------- [2023-11-23 21:22:43,431 INFO L270 PluginConnector]: Initializing Witness Printer... [2023-11-23 21:22:43,432 INFO L274 PluginConnector]: Witness Printer initialized [2023-11-23 21:22:43,432 INFO L184 PluginConnector]: Executing the observer RCFGCatcher from plugin Witness Printer for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 23.11 09:22:01" (3/4) ... [2023-11-23 21:22:43,434 INFO L137 WitnessPrinter]: Generating witness for correct program [2023-11-23 21:22:43,441 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure processEnvironment__wrappee__base [2023-11-23 21:22:43,441 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure changeMethaneLevel [2023-11-23 21:22:43,441 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure cleanup [2023-11-23 21:22:43,441 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure timeShift [2023-11-23 21:22:43,442 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure waterRise [2023-11-23 21:22:43,442 INFO L361 RCFGBacktranslator]: Ignoring RootEdge to procedure isPumpRunning [2023-11-23 21:22:43,449 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 46 nodes and edges [2023-11-23 21:22:43,450 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 12 nodes and edges [2023-11-23 21:22:43,451 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 5 nodes and edges [2023-11-23 21:22:43,451 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-23 21:22:43,452 INFO L943 BoogieBacktranslator]: Reduced CFG by removing 1 nodes and edges [2023-11-23 21:22:43,478 WARN L220 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!((\old(switchedOnBeforeTS) == \old(pumpRunning))) || !((pumpRunning == 0))) || !((\old(waterLevel) == 2))) || (waterLevel < 2)) || ((2 == waterLevel) && (switchedOnBeforeTS == 0))) && ((((!((\old(switchedOnBeforeTS) == \old(pumpRunning))) || !((pumpRunning == 0))) || (waterLevel < 2)) || (switchedOnBeforeTS == 0)) || !((0 == systemActive)))) && ((!((\old(switchedOnBeforeTS) == \old(pumpRunning))) || (!((switchedOnBeforeTS == 0)) && (pumpRunning == switchedOnBeforeTS))) || (\old(switchedOnBeforeTS) == 0))) && (((!((switchedOnBeforeTS == 0)) && (pumpRunning == switchedOnBeforeTS)) || ((waterLevel < 2) && (pumpRunning == switchedOnBeforeTS))) || ((\old(pumpRunning) == 0) && (2 <= \old(waterLevel))))) [2023-11-23 21:22:43,512 WARN L141 nessWitnessGenerator]: Not writing invariant because ACSL is forbidden: (((((((!((\old(switchedOnBeforeTS) == \old(pumpRunning))) || !((pumpRunning == 0))) || !((\old(waterLevel) == 2))) || (waterLevel < 2)) || ((2 == waterLevel) && (switchedOnBeforeTS == 0))) && ((((!((\old(switchedOnBeforeTS) == \old(pumpRunning))) || !((pumpRunning == 0))) || (waterLevel < 2)) || (switchedOnBeforeTS == 0)) || !((0 == systemActive)))) && ((!((\old(switchedOnBeforeTS) == \old(pumpRunning))) || (!((switchedOnBeforeTS == 0)) && (pumpRunning == switchedOnBeforeTS))) || (\old(switchedOnBeforeTS) == 0))) && (((!((switchedOnBeforeTS == 0)) && (pumpRunning == switchedOnBeforeTS)) || ((waterLevel < 2) && (pumpRunning == switchedOnBeforeTS))) || ((\old(pumpRunning) == 0) && (2 <= \old(waterLevel))))) [2023-11-23 21:22:43,567 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/witness.graphml [2023-11-23 21:22:43,568 INFO L149 WitnessManager]: Wrote witness to /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/witness.yml [2023-11-23 21:22:43,569 INFO L131 PluginConnector]: ------------------------ END Witness Printer---------------------------- [2023-11-23 21:22:43,569 INFO L158 Benchmark]: Toolchain (without parser) took 43449.40ms. Allocated memory was 180.4MB in the beginning and 1.2GB in the end (delta: 981.5MB). Free memory was 150.3MB in the beginning and 1.0GB in the end (delta: -888.3MB). Peak memory consumption was 91.7MB. Max. memory is 16.1GB. [2023-11-23 21:22:43,570 INFO L158 Benchmark]: CDTParser took 0.31ms. Allocated memory is still 127.9MB. Free memory is still 101.7MB. There was no memory consumed. Max. memory is 16.1GB. [2023-11-23 21:22:43,570 INFO L158 Benchmark]: CACSL2BoogieTranslator took 571.93ms. Allocated memory is still 180.4MB. Free memory was 149.8MB in the beginning and 130.2MB in the end (delta: 19.6MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. [2023-11-23 21:22:43,570 INFO L158 Benchmark]: Boogie Procedure Inliner took 66.01ms. Allocated memory is still 180.4MB. Free memory was 130.2MB in the beginning and 128.3MB in the end (delta: 1.9MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-11-23 21:22:43,571 INFO L158 Benchmark]: Boogie Preprocessor took 44.72ms. Allocated memory is still 180.4MB. Free memory was 128.3MB in the beginning and 126.7MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. [2023-11-23 21:22:43,571 INFO L158 Benchmark]: RCFGBuilder took 761.31ms. Allocated memory is still 180.4MB. Free memory was 126.7MB in the beginning and 129.9MB in the end (delta: -3.1MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. [2023-11-23 21:22:43,572 INFO L158 Benchmark]: TraceAbstraction took 41857.87ms. Allocated memory was 180.4MB in the beginning and 1.2GB in the end (delta: 981.5MB). Free memory was 129.3MB in the beginning and 1.0GB in the end (delta: -916.7MB). Peak memory consumption was 682.9MB. Max. memory is 16.1GB. [2023-11-23 21:22:43,572 INFO L158 Benchmark]: Witness Printer took 137.44ms. Allocated memory is still 1.2GB. Free memory was 1.0GB in the beginning and 1.0GB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. [2023-11-23 21:22:43,575 INFO L338 ainManager$Toolchain]: ####################### End [Toolchain 1] ####################### --- Results --- * Results from de.uni_freiburg.informatik.ultimate.core: - StatisticsResult: Toolchain Benchmarks Benchmark results are: * CDTParser took 0.31ms. Allocated memory is still 127.9MB. Free memory is still 101.7MB. There was no memory consumed. Max. memory is 16.1GB. * CACSL2BoogieTranslator took 571.93ms. Allocated memory is still 180.4MB. Free memory was 149.8MB in the beginning and 130.2MB in the end (delta: 19.6MB). Peak memory consumption was 18.9MB. Max. memory is 16.1GB. * Boogie Procedure Inliner took 66.01ms. Allocated memory is still 180.4MB. Free memory was 130.2MB in the beginning and 128.3MB in the end (delta: 1.9MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * Boogie Preprocessor took 44.72ms. Allocated memory is still 180.4MB. Free memory was 128.3MB in the beginning and 126.7MB in the end (delta: 1.6MB). Peak memory consumption was 2.1MB. Max. memory is 16.1GB. * RCFGBuilder took 761.31ms. Allocated memory is still 180.4MB. Free memory was 126.7MB in the beginning and 129.9MB in the end (delta: -3.1MB). Peak memory consumption was 10.5MB. Max. memory is 16.1GB. * TraceAbstraction took 41857.87ms. Allocated memory was 180.4MB in the beginning and 1.2GB in the end (delta: 981.5MB). Free memory was 129.3MB in the beginning and 1.0GB in the end (delta: -916.7MB). Peak memory consumption was 682.9MB. Max. memory is 16.1GB. * Witness Printer took 137.44ms. Allocated memory is still 1.2GB. Free memory was 1.0GB in the beginning and 1.0GB in the end (delta: 7.3MB). Peak memory consumption was 6.3MB. Max. memory is 16.1GB. * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: - GenericResultAtLocation [Line: 49]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"featureselect.i","") [49] - GenericResultAtLocation [Line: 87]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"wsllib_check.i","") [87] - GenericResultAtLocation [Line: 96]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"MinePump.i","") [96] - GenericResultAtLocation [Line: 287]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"libacc.i","") [287] - GenericResultAtLocation [Line: 653]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"scenario.i","") [653] - GenericResultAtLocation [Line: 725]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Test.i","") [725] - GenericResultAtLocation [Line: 823]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Specification5_spec.i","") [823] - GenericResultAtLocation [Line: 873]: Unsoundness Warning Ignoring preprocessor pragma C: #pragma merger(0,"Environment.i","") [873] * Results from de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction: - StatisticsResult: ErrorAutomatonStatistics NumberErrorTraces: 0, NumberStatementsAllTraces: 0, NumberRelevantStatements: 0, 0.0s ErrorAutomatonConstructionTimeTotal, 0.0s FaulLocalizationTime, NumberStatementsFirstTrace: -1, TraceLengthAvg: 0, 0.0s ErrorAutomatonConstructionTimeAvg, 0.0s ErrorAutomatonDifferenceTimeAvg, 0.0s ErrorAutomatonDifferenceTimeTotal, NumberOfNoEnhancement: 0, NumberOfFiniteEnhancement: 0, NumberOfInfiniteEnhancement: 0 - PositiveResult [Line: 92]: a call to reach_error is unreachable For all program executions holds that a call to reach_error is unreachable at this location - StatisticsResult: Ultimate Automizer benchmark data CFG has 7 procedures, 51 locations, 1 error locations. Started 1 CEGAR loops. OverallTime: 41.8s, OverallIterations: 6, TraceHistogramMax: 4, PathProgramHistogramMax: 1, EmptinessCheckTime: 0.0s, AutomataDifference: 7.7s, DeadEndRemovalTime: 0.0s, HoareAnnotationTime: 5.1s, InitialAbstractionConstructionTime: 0.0s, HoareTripleCheckerStatistics: 0 mSolverCounterUnknown, 1728 SdHoareTripleChecker+Valid, 3.4s IncrementalHoareTripleChecker+Time, 0 mSdLazyCounter, 1705 mSDsluCounter, 2758 SdHoareTripleChecker+Invalid, 2.8s Time, 0 mProtectedAction, 0 SdHoareTripleChecker+Unchecked, 0 IncrementalHoareTripleChecker+Unchecked, 2247 mSDsCounter, 1170 IncrementalHoareTripleChecker+Valid, 0 mProtectedPredicate, 3529 IncrementalHoareTripleChecker+Invalid, 4699 SdHoareTripleChecker+Unknown, 0 mSolverCounterNotChecked, 1170 mSolverCounterUnsat, 511 mSDtfsCounter, 3529 mSolverCounterSat, 0.1s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Unknown, PredicateUnifierStatistics: 0 DeclaredPredicates, 533 GetRequests, 271 SyntacticMatches, 16 SemanticMatches, 246 ConstructedPredicates, 0 IntricatePredicates, 1 DeprecatedPredicates, 7845 ImplicationChecksByTransitivity, 10.9s Time, 0.0s BasicInterpolantAutomatonTime, BiggestAbstraction: size=500occurred in iteration=5, InterpolantAutomatonStates: 178, traceCheckStatistics: No data available, InterpolantConsolidationStatistics: No data available, PathInvariantsStatistics: No data available, 0/0 InterpolantCoveringCapability, TotalInterpolationStatistics: No data available, 0.0s DumpTime, AutomataMinimizationStatistics: 0.2s AutomataMinimizationTime, 6 MinimizatonAttempts, 264 StatesRemovedByMinimization, 4 NontrivialMinimizations, HoareAnnotationStatistics: 0.0s HoareAnnotationTime, 18 LocationsWithAnnotation, 1047 PreInvPairs, 2132 NumberOfFragments, 968 HoareAnnotationTreeSize, 1047 FomulaSimplifications, 23065 FormulaSimplificationTreeSizeReduction, 0.8s HoareSimplificationTime, 18 FomulaSimplificationsInter, 22334 FormulaSimplificationTreeSizeReductionInter, 4.3s HoareSimplificationTimeInter, RefinementEngineStatistics: TRACE_CHECK: 0.1s SsaConstructionTime, 0.2s SatisfiabilityAnalysisTime, 3.7s InterpolantComputationTime, 300 NumberOfCodeBlocks, 300 NumberOfCodeBlocksAsserted, 8 NumberOfCheckSat, 389 ConstructedInterpolants, 0 QuantifiedInterpolants, 1605 SizeOfPredicates, 17 NumberOfNonLiveVariables, 484 ConjunctsInSsa, 48 ConjunctsInUnsatCore, 10 InterpolantComputations, 4 PerfectInterpolantSequences, 109/149 InterpolantCoveringCapability, INVARIANT_SYNTHESIS: No data available, INTERPOLANT_CONSOLIDATION: No data available, ABSTRACT_INTERPRETATION: No data available, PDR: No data available, ACCELERATED_INTERPOLATION: No data available, SIFA: No data available, ReuseStatistics: No data available - AllSpecificationsHoldResult: All specifications hold 1 specifications checked. All of them hold - InvariantResult [Line: 666]: Loop Invariant Derived loop invariant: (((((0 == systemActive) && (switchedOnBeforeTS == 0)) || !((pumpRunning == 0))) || (waterLevel < 2)) || ((2 == waterLevel) && (switchedOnBeforeTS == 0))) - InvariantResult [Line: 667]: Loop Invariant Derived loop invariant: ((((waterLevel < 1) || (!((pumpRunning == 0)) && (2 == waterLevel))) || (waterLevel == 1)) || ((2 == waterLevel) && (switchedOnBeforeTS == 0))) - InvariantResult [Line: 737]: Loop Invariant Derived loop invariant: (((((((!((\old(switchedOnBeforeTS) == \old(pumpRunning))) || !((pumpRunning == 0))) || !((\old(waterLevel) == 2))) || (waterLevel < 2)) || ((2 == waterLevel) && (switchedOnBeforeTS == 0))) && ((((!((\old(switchedOnBeforeTS) == \old(pumpRunning))) || !((pumpRunning == 0))) || (waterLevel < 2)) || (switchedOnBeforeTS == 0)) || !((0 == systemActive)))) && ((!((\old(switchedOnBeforeTS) == \old(pumpRunning))) || (!((switchedOnBeforeTS == 0)) && (pumpRunning == switchedOnBeforeTS))) || (\old(switchedOnBeforeTS) == 0))) && (((!((switchedOnBeforeTS == 0)) && (pumpRunning == switchedOnBeforeTS)) || ((waterLevel < 2) && (pumpRunning == switchedOnBeforeTS))) || ((\old(pumpRunning) == 0) && (2 <= \old(waterLevel))))) RESULT: Ultimate proved your program to be correct! [2023-11-23 21:22:43,615 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_10b29b8c-8f0b-4f97-91f4-6442a0bfa71f/bin/utaipan-verify-mE87zJ7Ire/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Forceful destruction successful, exit code 0 Received shutdown request... --- End real Ultimate output --- Execution finished normally Writing output log to file Ultimate.log Result: TRUE